Fraudsters are exploiting human weaknesses. Tools cannot detect or prevent social engineering. Attackers identify the least resistance point, and they perform their attacks avoiding common fraud detection rules. Anti-Fraud system, security layers and adaptive access control must being incorporated with SIEM, identity systems and other security vendors to monitor the users/customers behavior trends.